DDS (Ver_10-03-17.01) - NTFSx86
Run by Jeff Lyons at 13:42:21.20 on Sat 07/24/2010
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.574 [GMT -5:00]
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Apoint\Apoint.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Apoint\HidFind.exe
C:\Program Files\Apoint\Apntex.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Jeff Lyons\Desktop\dds.scr
============== Pseudo HJT Report ===============
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
IE: &ieSpell Options - c:\program files\iespell\iespell.dll/SPELLOPTION.HTM
IE: Check &Spelling - c:\program files\iespell\iespell.dll/SPELLCHECK.HTM
IE: Lookup on Merriam Webster - file://c:\program files\iespell\Merriam Webster.HTM
IE: Lookup on Wikipedia - file://c:\program files\iespell\wikipedia.HTM
IE: {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - res://c:\program files\iespell\iespell.dll/SPELLCHECK.HTM
IE: {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - res://c:\program files\iespell\iespell.dll/SPELLOPTION.HTM
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxdev.dll
Hosts: 127.0.0.1
www.spywareinfo.com
============= SERVICES / DRIVERS ===============
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-7-23 64288]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-6-20 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-6-20 29584]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-6-20 243024]
R1 fanio;FanIO driver;c:\windows\system32\drivers\fanio.sys [2010-6-20 14464]
R2 avg9emc;AVG Free E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2010-7-15 921952]
R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-7-15 308136]
R3 GTIPCI21;GTIPCI21;c:\windows\system32\drivers\gtipci21.sys [2010-6-20 88192]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2010-7-12 1181328]
=============== Created Last 30 ================
2010-07-24 04:02:08 0 d-----w- c:\docume~1\alluse~1.win\applic~1\Spybot - Search & Destroy
2010-07-24 03:52:46 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys
2010-07-24 03:27:58 0 dc-h--w- c:\docume~1\alluse~1.win\applic~1\{BD986C1B-72EC-4B82-B47B-6CAC4E6F494E}
2010-07-24 02:29:17 0 d-----w- c:\docume~1\alluse~1.win\applic~1\SecTaskMan
2010-07-24 01:20:14 0 d-----w- c:\docume~1\jeffly~1\applic~1\Malwarebytes
2010-07-24 01:20:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-07-24 01:19:58 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-07-24 01:19:58 0 d-----w- c:\docume~1\alluse~1.win\applic~1\Malwarebytes
2010-07-24 01:15:07 0 d-----w- c:\windows\system32\wbem\Repository
2010-07-15 22:55:08 12536 ----a-w- c:\windows\system32\avgrsstx.dll
2010-07-05 10:13:16 18236 ---ha-w- c:\windows\system32\mlfcache.dat
2010-07-01 17:21:27 248832 ----a-w- c:\windows\system32\VCLX50.BPL
2010-07-01 17:21:27 2023424 ----a-w- c:\windows\system32\VCL50.BPL
2010-07-01 17:21:27 147456 ----a-w- c:\windows\system32\BCBSMP50.BPL
2010-07-01 17:21:18 299520 ----a-w- c:\windows\uninst.exe
2010-07-01 17:21:16 0 d-----w- c:\documents and settings\jeff lyons\WINDOWS
2010-06-29 14:47:44 0 d-----w- C:\Gemstall
2010-06-28 13:13:16 0 d-----w- C:\SHOPAK V5.00.09 Suite Production CD
==================== Find3M ====================
2010-07-24 15:54:09 14336 ----a-w- c:\windows\system32\svchost.exe
2010-07-15 22:55:09 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-07-15 22:54:27 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-06-20 21:01:28 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-20 15:25:40 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2010-05-02 05:22:50 1851264 ----a-w- c:\windows\system32\win32k.sys
============= FINISH: 13:42:59.65 ===============
------------------------------------------------------------------------------------
DDS (Ver_10-03-17.01)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 6/20/2010 10:35:03 AM
System Uptime: 7/24/2010 12:30:53 PM (1 hours ago)
Motherboard: Dell Inc. | |
Processor: Intel(R) Pentium(R) M processor 1.73GHz | Microprocessor | 1728/133mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 37 GiB total, 16.585 GiB free.
D: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Dell TrueMobile 1300 WLAN Mini-PCI Card
Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_50101468&REV_02\4&2FA23535&0&18F0
Manufacturer: Broadcom
Name: Dell TrueMobile 1300 WLAN Mini-PCI Card
PNP Device ID: PCI\VEN_14E4&DEV_4318&SUBSYS_50101468&REV_02\4&2FA23535&0&18F0
Service: BCM43XX
==== System Restore Points ===================
RP1: 6/20/2010 10:38:57 AM - System Checkpoint
RP2: 6/20/2010 11:59:56 AM - Installed C-Major Audio
RP3: 6/20/2010 12:00:37 PM - Installed TIPCI
RP4: 6/20/2010 12:03:24 PM - Installed Broadcom Gigabit Integrated Controller
RP5: 6/20/2010 12:08:26 PM - Installed MSXML 4.0 SP2 Parser and SDK
RP6: 6/20/2010 12:09:05 PM - Installed Gemcom32
RP7: 6/20/2010 12:10:11 PM - Installed Java(TM) 6 Update 18
RP8: 6/20/2010 12:12:04 PM - Removed Gemcom32
RP9: 6/20/2010 12:12:26 PM - Installed Gemcom32
RP10: 6/20/2010 2:12:34 PM - Software Distribution Service 3.0
RP11: 6/20/2010 2:36:15 PM - Installed AVG Free 9.0
RP12: 6/20/2010 3:17:08 PM - Installed Java(TM) 6 Update 16
RP13: 6/20/2010 3:18:47 PM - Installed OpenOffice.org 3.1
RP14: 6/20/2010 3:36:32 PM - Removed OpenOffice.org 3.1
RP15: 6/20/2010 4:00:19 PM - Removed Java(TM) 6 Update 18
RP16: 6/20/2010 4:01:19 PM - Installed Java(TM) 6 Update 20
RP17: 6/20/2010 4:02:31 PM - Installed OpenOffice.org 3.2
RP18: 6/20/2010 5:15:42 PM - Software Distribution Service 3.0
RP19: 6/20/2010 10:27:16 PM - Installed Sapphire Management Suite 1.09.06 6162009
RP20: 6/21/2010 6:54:15 PM - Avg8 Update
RP21: 6/21/2010 7:00:37 PM - Avg Update
RP22: 6/22/2010 6:06:44 AM - Software Distribution Service 3.0
RP23: 6/22/2010 5:48:55 PM - Avg Update
RP24: 6/23/2010 8:11:43 PM - System Checkpoint
RP25: 6/24/2010 5:07:07 PM - Avg Update
RP26: 6/24/2010 8:54:53 PM - Installed Adobe Reader 9.3.
RP27: 6/25/2010 8:56:12 PM - System Checkpoint
RP28: 6/26/2010 9:56:12 PM - System Checkpoint
RP29: 6/27/2010 10:11:01 PM - System Checkpoint
RP30: 6/28/2010 11:16:57 PM - System Checkpoint
RP31: 6/29/2010 11:50:09 PM - System Checkpoint
RP32: 7/1/2010 12:50:09 AM - System Checkpoint
RP33: 7/2/2010 12:59:53 AM - System Checkpoint
RP34: 7/3/2010 1:37:43 AM - System Checkpoint
RP35: 7/4/2010 3:37:44 AM - System Checkpoint
RP36: 7/5/2010 4:37:43 AM - System Checkpoint
RP37: 7/6/2010 4:58:11 AM - System Checkpoint
RP38: 7/6/2010 7:18:53 PM - Installed QuickTime
RP39: 7/7/2010 9:35:03 PM - System Checkpoint
RP40: 7/8/2010 11:41:33 PM - System Checkpoint
RP41: 7/10/2010 12:23:40 AM - System Checkpoint
RP42: 7/11/2010 12:39:32 AM - System Checkpoint
RP43: 7/12/2010 1:39:32 AM - System Checkpoint
RP44: 7/13/2010 3:36:30 AM - System Checkpoint
RP45: 7/14/2010 6:57:55 PM - System Checkpoint
RP46: 7/15/2010 11:42:51 AM - Software Distribution Service 3.0
RP47: 7/15/2010 5:52:54 PM - Avg Update
RP48: 7/15/2010 5:55:23 PM - Avg Update
RP49: 7/16/2010 11:21:05 PM - System Checkpoint
RP50: 7/17/2010 11:39:40 PM - System Checkpoint
RP51: 7/18/2010 11:56:56 PM - System Checkpoint
RP52: 7/20/2010 12:01:18 AM - System Checkpoint
RP53: 7/20/2010 4:18:18 PM - Avg Update
RP54: 7/21/2010 6:30:55 AM - Software Distribution Service 3.0
RP55: 7/22/2010 3:14:06 PM - System Checkpoint
RP56: 7/23/2010 8:14:40 PM - Restore Operation
RP57: 7/24/2010 11:00:20 AM - Restore Operation
RP58: 7/24/2010 11:03:13 AM - Restore Operation
==== Installed Programs ======================
Ad-Aware
Adobe Acrobat 5.0
Adobe Flash Player 10 Plugin
Adobe Reader 9.3.3
ALPS Touch Pad Driver
Apple Application Support
Apple Software Update
AVG Free 9.0
Broadcom Gigabit Integrated Controller
C-Major Audio
CCleaner
Conexant D110 MDC V.92 Modem
Dell Wireless WLAN Card
Gemcom32
Gemstall
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB981793)
I8kfanGUI V3.1
ieSpell
Intel(R) Graphics Media Accelerator Driver for Mobile
Java Auto Updater
Java(TM) 6 Update 16
Java(TM) 6 Update 20
Malwarebytes' Anti-Malware
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (3.6.8)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
OpenOffice.org 3.2
QuickTime
Sapphire Management Suite 1.09.06 6162009
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB982381)
ServTerm
Spybot - Search & Destroy
Texas Instruments PCIxx21/x515/xx12 drivers.
TIPCI
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
==== Event Viewer Messages From Past Week ========
7/24/2010 11:42:16 AM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
7/24/2010 11:42:16 AM, error: Service Control Manager [7034] - The AVG Free E-mail Scanner service terminated unexpectedly. It has done this 1 time(s).
7/24/2010 11:42:16 AM, error: Service Control Manager [7031] - The Lavasoft Ad-Aware Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
7/24/2010 11:42:16 AM, error: Service Control Manager [7031] - The AVG Free WatchDog service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
7/24/2010 11:42:10 AM, error: Service Control Manager [7034] - The Dell Wireless WLAN Tray Service service terminated unexpectedly. It has done this 1 time(s).
7/23/2010 8:59:19 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
7/23/2010 8:59:11 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: PCIIde
7/23/2010 8:16:40 PM, error: Service Control Manager [7023] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error: The system cannot find the file specified.
7/23/2010 8:14:04 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
7/23/2010 8:13:37 PM, error: Ftdisk [49] - Configuring the Page file for crash dump failed. Make sure there is a page file on the boot partition and that is large enough to contain all physical memory.
7/23/2010 8:13:37 PM, error: Ftdisk [45] - The system could not sucessfully load the crash dump driver.
7/23/2010 11:19:08 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AvgLdx86 AvgMfx86 Fips intelppm
7/21/2010 8:10:17 AM, error: Dhcp [1002] - The IP address lease 192.168.0.101 for the Network Card with network address 0014A416AC13 has been denied by the DHCP server 192.168.50.1 (The DHCP Server sent a DHCPNACK message).
7/21/2010 1:34:49 PM, error: Dhcp [1002] - The IP address lease 192.168.50.129 for the Network Card with network address 0014A416AC13 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).
==== End Of File ===========================